Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDF115F693-36B2-11E2-A633-902B343DEEC9
HistoryNov 22, 2012 - 12:00 a.m.

FreeBSD -- Insufficient message length validation for EAP-TLS messages

2012-11-2200:00:00
vuxml.freebsd.org
4

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.082 Low

EPSS

Percentile

94.3%

JSON

Problem description:

The internal authentication server of hostapd does not
sufficiently validate the message length field of EAP-TLS
messages.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd= 8.3UNKNOWN
FreeBSDanynoarchfreebsd< 8.3_5UNKNOWN

Related

openvas 10
fedora 3
nessus 7
prion 1
osv 1
securityvulns 5
ubuntucve 1
debian 1
cve 1
freebsd_advisory 1
debiancve 1
openvas
openvas
Fedora Update for hostapd FEDORA-2012-15759
2012-10-19 00:00:00
Fedora Update for hostapd FEDORA-2012-15748
2012-10-19 00:00:00
FreeBSD Ports: FreeBSD
2012-11-26 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: hostapd-0.7.3-10.fc17
2012-10-18 00:32:53
[SECURITY] Fedora 16 Update: hostapd-0.7.3-10.fc16
2012-10-18 00:28:50
[SECURITY] Fedora 18 Update: hostapd-1.0-3.fc18
2012-10-13 02:59:33
nessus
nessus
Fedora 16 : hostapd-0.7.3-10.fc16 (2012-15748)
2012-10-18 00:00:00
openSUSE Security Update : hostapd (openSUSE-SU-2012:1371-1)
2014-06-13 00:00:00
Debian DSA-2557-1 : hostapd - buffer overflow
2012-10-09 00:00:00
prion
prion
Heap overflow
2012-10-10 18:55:00
osv
osv
hostapd - denial of service
2012-10-08 00:00:00
securityvulns
securityvulns
[PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation
2012-10-10 00:00:00
[SECURITY] [DSA 2557-1] hostapd security update
2012-10-10 00:00:00
hostapd buffer overflow
2012-10-10 00:00:00
ubuntucve
ubuntucve
CVE-2012-4445
2012-10-10 00:00:00
debian
debian
[SECURITY] [DSA 2557-1] hostapd security update
2012-10-08 08:41:48
cve
cve
CVE-2012-4445
2012-10-10 18:55:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-12:07.hostapd
2012-11-22 00:00:00
debiancve
debiancve
CVE-2012-4445
2012-10-10 18:55:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.082 Low

EPSS

Percentile

94.3%

JSON
Related for F115F693-36B2-11E2-A633-902B343DEEC9
openvas10fedora3nessus7prion1osv1securityvulns5ubuntucve1debian1cve1freebsd_advisory1debiancve1